Privacy Policy

This Privacy Policy applies to personal information processed by GoFaceless as a data controller. “Personal information” means any information that identifies or could reasonably be used to identify an individual.

We collect the following categories of information:

• Account information. Name, email address, hashed password, profile preferences, country, and time zone.
• Billing information. Billing name, address, last four digits of your payment card, and transaction history. Full payment card numbers are collected and stored by Stripe, not by GoFaceless.
• Content you create. Scripts, prompts, voiceovers, thumbnails, captions, videos, and any other material you upload, generate, or store within the Service.
• Usage and device data. Log data, IP address, browser and device type, operating system, referring and exit pages, feature usage, and timestamps.
• Cookies and similar technologies.First-party cookies and local storage are used for authentication, session management, preferences, and aggregated product analytics. See Section 7.
• Communications. Support requests, feedback, and correspondence you send to us.

We use personal information to:

• Provide, operate, maintain, and improve the Service.
• Authenticate users, process payments, and manage subscriptions.
• Personalize recommendations, intelligence, and playbooks based on your data.
• Respond to support inquiries and communicate service updates, security notices, and transactional messages.
• Detect, investigate, and prevent fraud, abuse, security incidents, and violations of our Terms of Service.
• Comply with legal obligations and enforce our agreements.
• With your consent, send marketing communications that you may opt out of at any time.

We process personal information on the legal bases of contract performance, legitimate interests, consent, and compliance with legal obligations, as applicable under relevant data protection laws.

Payments and billing are processed by Stripe, Inc. When you subscribe to GoFaceless or enroll in our affiliate program, you provide payment and payout information directly to Stripe. Stripe acts as an independent data controller for payment data and processes it in accordance with the Stripe Privacy Policy and the Stripe Services Agreement. GoFaceless receives limited billing metadata such as subscription status, invoice totals, and the last four digits of your card.

GoFaceless does not integrate with social media platforms, does not collect data from social media platforms on your behalf, and does not publish, schedule, or distribute content to social media platforms. Generated videos are produced as files for you to download and publish manually on the platforms of your choice.

We do not sell personal information. We share personal information only in the following limited circumstances:

• Service providers. Infrastructure, hosting, analytics, email delivery, error monitoring, customer support, and payment processing vendors that are contractually bound to use data only to provide services to GoFaceless.
• Connected platforms. When you authorize GoFaceless to act on your behalf on a third-party platform, we transmit the data necessary to complete the action.
• Compliance and safety. When required by applicable law, legal process, or to protect the rights, property, or safety of GoFaceless, our users, or the public.
• Business transfers. In connection with a merger, acquisition, financing, reorganization, or sale of assets, subject to standard confidentiality protections and this Privacy Policy.
• With your consent. Any other sharing that you explicitly authorize.

We do not use data obtained from third-party platform APIs for independent advertising, for resale, or for any purpose not authorized by the relevant platform’s developer terms.

If you are located in the European Economic Area, the United Kingdom, or Switzerland, we process your personal information on one or more of the following legal bases:

• Contract. Processing necessary to provide the Service under our Terms of Service.
• Legitimate interests. Improving the Service, securing accounts, preventing fraud, and operating our business, where those interests are not overridden by your rights.
• Consent. Where you have given consent, for example to access connected platform data or to receive marketing communications. You may withdraw consent at any time.
• Legal obligation. Processing necessary to comply with legal requirements.

GoFaceless uses first-party cookies and similar technologies to keep you signed in, remember preferences, secure sessions, and measure product usage in aggregate. We do not use third-party advertising cookies or cross-site tracking pixels. You can configure your browser to block or delete cookies, although doing so may affect core functionality such as authentication.

We retain personal information for as long as your account is active and as needed to provide the Service. When you delete your account or disconnect a platform, we delete or anonymize the associated personal information within thirty (30) days, except where retention is required for legal, tax, accounting, fraud prevention, or dispute resolution purposes. Backups are overwritten on a rolling schedule.

GoFaceless implements administrative, technical, and physical safeguards designed to protect personal information, including encryption of data in transit (TLS 1.2 or higher), encryption of authorization tokens and sensitive fields at rest, least-privilege access controls, audit logging, and regular security reviews. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

Depending on your location, you may have the following rights with respect to your personal information:

• Access the personal information we hold about you.
• Correct inaccurate or incomplete information.
• Delete your personal information.
• Object to or restrict certain processing.
• Port your data to another service.
• Withdraw consent at any time.
• Lodge a complaint with your local data protection authority.

California residents have additional rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information is collected, to request deletion, and to opt out of the sale or sharing of personal information. GoFaceless does not sell or share personal information as defined by the CCPA.

To exercise any of these rights, contact us at [email protected]. We will respond within the timeframes required by applicable law and may need to verify your identity before fulfilling your request.

GoFaceless operates internationally. Personal information may be processed and stored in countries outside the one in which you reside, including the United States. When we transfer personal information outside your jurisdiction, we rely on appropriate safeguards such as the European Commission’s Standard Contractual Clauses or other recognized legal mechanisms.

GoFaceless is not directed to, and we do not knowingly collect personal information from, individuals under the age of 16. If you believe a child has provided us with personal information, contact us at [email protected] and we will take steps to delete it.

We may update this Privacy Policy from time to time to reflect changes in the Service, our practices, or legal requirements. Material changes will be communicated in the product or by email, and the “Last updated” date at the top of this page will be revised. Continued use of the Service after changes take effect constitutes your acceptance of the updated policy.

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, contact us at:

[email protected]